CVE-2024-7014 - EvilVideo Attack on Telegram for Android – How Hackers Can Send Malicious Apps as Videos
On June 17th, 2024, a new vulnerability shook the messaging world: CVE-2024-7014, also known as the EvilVideo vulnerability. This flaw lets attackers disguise malicious Android
CVE-2024-40075 - Exploiting an XXE Vulnerability in Laravel v11.x—How It Works and Why You Should Care
June 2024 brought a serious vulnerability to thousands of Laravel users—CVE-2024-40075. If you’re building apps with Laravel v11.x, it’s important to
CVE-2024-6205 - PayPlus Payment Gateway WordPress Plugin (v6.6.8 and below) SQL Injection Vulnerability Exploit and Mitigation Guide
On June 2024, a critical security issue, CVE-2024-6205, was found in the PayPlus Payment Gateway WordPress plugin, impacting all sites running plugin versions before 6.
CVE-2024-38156 - Digging Into the Microsoft Edge (Chromium-based) Spoofing Vulnerability
On June 11, 2024, Microsoft disclosed a critical spoofing vulnerability in its Chromium-based Edge browser — CVE-2024-38156. This flaw lets crafty attackers display fake websites or
CVE-2024-40898 - SSRF in Apache HTTP Server on Windows via mod_rewrite – How It Leads to NTLM Hash Leaks
A new security flaw has been discovered in the Apache HTTP Server, specifically for Windows environments, leveraging the mod_rewrite module in server or virtual
Episode
00:00:00
00:00:00